Integrated security system

ABSTRACT

A third party payment system allows a user to conduct transactions through payment accounts stored on the third party payment system. The user can enroll in the third party payment system and create an account with registered payment accounts. The user can access the payment accounts via a mobile device and load the payment data associated with a payment account to the mobile device. The user can then utilize the mobile device to provide payment during a transaction.

The present application is a continuation of U.S. patent applicationSer. No. 13/237,690, filed Sep. 20, 2011, which is a non-provisionalapplication of and claims priority to U.S. Provisional Application No.61/385,095, filed on Sep. 21, 2010, all of which are herein incorporatedby references for all purposes.

BACKGROUND

A typical consumer may store personal information (payment information,user settings, etc.) in a variety of places, such as third partysystems. These third party may include, for example, online websites,user networks, applications, user ecosystems, etc. These “places” may beplatforms that comprise payment systems, and can store data relating topayment information (e.g. credit card number, billing address, etc.) foruse within the payment system. For example, an online website may keep arecord of a consumer's payment information, after the first time theconsumer made a purchase with the website. Accordingly, any subsequentpurchases may be more convenient for the consumer, as the payment datawill not need to be re-entered. Similarly, online social networks,in-person networks and clubs, music stores, etc., often will maintaindatabases of their user's information.

This user and associated payment information is often not usable outsidethe specific payment system. Thus, data stored in one online merchantmay not be usable in a social network or with another online vendor. Aconsumer may not be provided a full range of services for the samepayment information (rewards, fraud check, notifications, etc.) whenutilizing different platforms. Embodiments of the invention addressthese problems, and allow for integration across various systems.Consumer information may be shared, when appropriate, and the consumermay receive additional incentives or other value added services acrossplatforms.

Embodiments of the invention address these and other problems,individually and collectively.

BRIEF SUMMARY

Embodiments of the present invention provide a third party paymentsystem in which a user can enroll by creating an account and canregister a plurality of payment devices with the account. The user canthen access the account via a mobile device and load the payment dataassociated with a payment device onto the mobile device. The user canthen utilize the mobile device as a payment instrument when conducting atransaction with a vendor. The payment data can be provided to thevendor via a short range signal transmission, e.g., near fieldcommunication (NFC), or via another wired or wireless communicationmedium, e.g., cellular communication, WiFi, Ethernet, etc.).

In one embodiment, a method for utilizing payment data stored on a thirdparty payment system is provided. The method includes accessing anaccount with a mobile device through a first communication channel,providing information associated with the user account on the mobiledevice, selecting a first payment account registered with the useraccount, loading the payment data associated with the first paymentaccount onto the mobile device, transmitting the loaded payment datathrough a second communication channel to conduct a transaction. Theuser account is stored on a third party payment system. The user accountinformation includes at least one payment account registered with theuser account.

In another embodiment, a mobile device is provide which includes anantenna coupled to a communication interface for wirelessly transmittingdata across a first communication channel, an input element, a processorcoupled to a computer readable medium, the computer readable mediumhaving code executable by a processor for implementing a method. Themethod includes accessing a user account with a mobile device through afirst communication channel, receiving a selection of a first paymentaccount through the input element of the mobile device, and loadingpayment data associated with the first payment account onto the mobiledevice. The user account is stored on a third party payment system. Thefirst payment account is registered with the user account on the thirdparty payment system. The antenna, the communication interface and theinput element are coupled to the processor.

In yet another embodiment, a method for conducting a transaction througha third party payment system is provided. The method includes accessinga user account registered on the third party payment system through afirst communication channel, receiving a selection of a payment accountregistered with the user account, sending payment data associated withthe payment account to a mobile device. Access is granted through atleast one security feature associated with the user account.

In a further embodiment, a server computer having a computer readablemedium including code executable by a processor for implementing amethod is provided. The method includes receiving, on a communicationinterface, information associated with a user through a firstcommunication channel from a mobile device, accessing, on a databasecoupled to the server computer, a user account associated with theinformation, retrieving, from the database, payment data associated witha payment account registered with the user account, and sending, throughthe communication interface, the payment data associated with theselected payment account to the mobile device. The user account isstored in a memory element coupled to the server compute. The retrievalis based on a selection received through the first communication channelfrom the mobile device. The payment data is loaded onto the mobiledevice in order to conduct a transaction.

These and other embodiments of the invention are described in furtherdetail below.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 shows a system for conducting a transaction through a third partypayment system according to embodiments of the invention.

FIG. 2 shows an exemplary third party payment system according toembodiments of the invention.

FIG. 3 shows an exemplary mobile device according to embodiment of theinvention.

FIG. 4 shows an exemplary payment processing network system according toembodiments of the invention.

FIG. 5 shows a method for conducting a transaction through a third partypayment system according to embodiments of the invention.

FIG. 6 shows a screen shot of a user profile according to embodiments ofthe invention.

FIGS. 7A-7E show exemplary screenshots of a third party payment systemapplication on a mobile device according to embodiments of theinvention.

FIG. 8 shows an exemplary computer system, in which various embodimentsmay be implemented.

FIG. 9 shows an exemplary access device according to embodiments of theinvention.

DETAILED DESCRIPTION

Merchants providing a central marketplace for various products allow forconsumers to complete multiple purchases without conducting multipletransactions. Some of these merchants directly provide these products toconsumers, while others partner with numerous other merchants in orderto provide these products to the consumer. In either situation, aconsumer has the ability to pay a single transaction to the merchant,often having the option to create an account with that merchant in orderto conduct future transactions. The account can include the consumer'spayment information and contact information. Accordingly, the merchantbecomes a payment system between the consumer and a partner of themerchant providing its merchandise on the merchant marketplace. However,the consumer is only providing payment to the singular entity, e.g., themerchant, during the transaction.

Embodiments of the invention are directed to improved systems andmethods for integrating payment systems. In particular, the presentembodiments provide a system in which a user can enroll in a third partypayment system and utilize the third party payment system to conductpoint of sale transactions at various merchant locations, including inperson and online. For example, a user can enroll with a merchantwebsite for a marketplace in which that user can purchase productsdirectly from the merchant website, or from other vendors not associatedwith the website. In the case where the user purchases from the website,the products can be sold by the company hosting the website or byvendors who partner with the website, such as that described in previousparagraphs. In the case where the user purchases from other vendors, theuser can access payment data associated with a payment account (e.g.,credit card, debit card, gift card, etc.) which is stored on the thirdparty payment system. The user can then load this payment data to adevice, such as a mobile device (e.g., SmartPhone), for use during atransaction.

In embodiments of the invention, the user may enroll with the websiteand create an account with the third party payment system through thecompany website. The account information can include user preferences,contact information, billing address, and a plurality of paymentaccounts and associated payment data (e.g., personal account number(PAN), card verification value (CVV, CVV2), etc.). Accordingly, onceentered by the user, the payment data associated with the paymentaccount is securely stored for future use. In some embodiments, a usermay register a plurality of payment accounts with the website.

In further embodiments of the invention, the user can utilize a mobiledevice to access his/her account and payment data associated with aregistered payment account. The account interface can display an optionfor the user to load a registered card to the mobile device. The mobiledevice can be a mobile phone, which is capable of securely communicatingthrough the Internet in order download the payment data on the mobiledevice prior to conducting a transaction. The mobile device can also becapable of communicating with a point of sale (POS) terminal that has anear field communication (NFC) enabled reader. The mobile device canthen communicate the loaded payment data to the POS terminal to providepayment during a transaction.

The user can enable their phone with a program associated with the thirdparty payment system, including the payment data stored in the thirdparty payment system service. The application can be loaded to themobile device along with the payment data and/or prior to accessing theaccount and loading the payment data (including card on file accountinformation for any card). The device may comprise Near FieldCommunication (NFC) enabled phones, but other payment initiation methodsare available (such as “bump” technology as described in U.S. patentapplication Ser. No. 12/954,111, filed on Nov. 25, 2009, which is hereinincorporated by reference for all purposes). Users can then make brickpayments (e.g. in-store payments), face to face payments, or remotepayments. By this method, the user's purchase transactions can be tiedinto the third party payment system's database. The user can also selectone or more value added services to use with her account, such as alertmessages, rewards, etc.

In certain embodiments, a user may obtain store credit with the thirdparty payment system. For example, if the user purchased a productdirectly from the third party payment system and later returned theproduct and/or received a transfer from another user on the third partypayment system, and/or a gift card for the third party payment system.In further embodiments, a store credit on the third party payment systemcould potentially be used as a reward for subscribing to theintegration. This can reward both the third party payment system and theuser.

Prior to discussing further aspects of embodiments of the invention,further descriptions of some additional terms may be useful.

A “mobile device” may be any suitable mobile communication device. Asuitable mobile device may be in the form of a mobile phone, and mayinclude an antenna, as well as a processor and a memory. It may alsoinclude a contactless element so that it can communicate using a shortrange wireless communication medium.

A “server computer” can be one or more computers, operating together. Aserver computer may be a single computational apparatus or a powerfulcluster of computers. For example, the server computer can be a largemainframe, a minicomputer cluster, or a group of servers functioning asa unit. In one example, the server computer may be a database servercoupled to a Web server.

A “payment account” can be an account which can be used for payment, andcan typically be associated with any suitable device which can beutilized to facilitate payment from between two or more parties during atransaction. For example, a payment account can be associated with acredit card, a debit card, a gift card a check, a bank account or othersimilar device.

“Payment data” refers to any data that can be associated with a paymentaccount and utilized to complete a transaction. For example, paymentdata can include a personal account number (PAN), a card verificationvalue (CVV, CVV2, dCVV2), user billing address, user name, issuerinformation (e.g., routing number, name, etc.) and any additionalpayment information required to complete a transaction between two ormore entities.

An “access device” may be any suitable device that can interact with themobile device and/or a payment card. Examples of access devices includepoint of sale (POS) devices, cellular phones, PDAs, personal computers(PCs), tablet PCs, handheld specialized readers, set-top boxes,electronic cash registers (ECRs), automated teller machines (ATMs),virtual cash registers (VCRs), kiosks, security systems, access systems,and the like.

An “issuer” may be any business entity (e.g., a bank). Typically, anissuer is a financial institution, such as a bank. The issuer issuesportable consumer devices to the consumer that may be used to conduct atransaction, such as a credit or debit card to the consumer.

An “acquirer” is typically a business entity, e.g., a commercial bankthat has a business relationship with a particular merchant. Someentities such as American Express perform both issuer and acquirerfunctions. Embodiments of the invention encompass such single entityissuer-acquirers.

A “payment processing network” may include data processing subsystems,networks, and operations used to support and deliver authorizationservices, exception file services, and clearing and settlement services.An exemplary payment processing system may include VisaNet™. Paymentprocessing systems such as VisaNet™ are able to process credit cardtransactions, debit card transactions, and other types of commercialtransactions. VisaNet™, in particular, includes a VIP system (VisaIntegrated Payments system) which processes authorization requests and aBase II system which performs clearing and settlement services.

A “server computer” can be a powerful computer or a cluster ofcomputers. For example, the server computer can be a large mainframe, aminicomputer cluster, or a group of servers functioning as a unit. Inone example, the server computer may be a database server coupled to aWeb server and may host a merchant website.

An “authorization request message” can include a request forauthorization to conduct an electronic payment transaction. It mayfurther include an issuer account identifier. The issuer accountidentifier may be a payment card account identifier associated with apayment card. The authorization request message may request that anissuer of the payment card authorize a transaction. An authorizationrequest message according to an embodiment of the invention may complywith ISO 8583, which is a standard for systems that exchange electronictransactions made by cardholders using payment cards. An authorizationrequest message may comprise a number of data elements including one ormore of the following, in any suitable combination, an account numberfor a payment card or other suitable portable consumer device, amerchant ID, a transaction amount, a card verification value (CVV), etc.

An “authorization response message” can be a message that includes anauthorization code, and may typically be produced by an issuer. Theauthorization response message can provide an indication of whether ornot a transaction is authorized.

I. Systems

A system for retrieving payment data stored on a third party paymentsystem is illustrated in FIG. 1. Exemplary systems and devices utilizedwithin the system of FIG. 1 are further described within reference toFIGS. 2-4. Although a small number of users, client devices, merchants,acquirers, payment processing networks, third party payment systems, andissuers are shown in FIG. 1, it is understood that embodiments of theinvention are not limited thereto and embodiments of the invention mayinclude any suitable number of entities.

FIG. 1 shows a block diagram of a system in accordance with anembodiment of the invention. As shown in step 1, a user 10(i) may use aclient computer, such as a personal computer, a mobile device, or aSmartPhone, 10(g) to access the Internet or to directly communicate withthe third party payment system 10(a) through a first communicationchannel 10(j). The third party payment system 10(a) may be a socialnetwork, website, program, merchant, etc., as described above. The thirdparty payment system 10(a) may comprise a computer apparatus, and mayalso include a payment system that comprises a server computer and adatabase coupled to the server computer. The computer apparatus andserver computer may comprise a processor and a computer readable medium.The computer readable medium may comprise code or instructions forperforming transaction functions, such as purchases and transfers.

Referring now to FIG. 2, an exemplary third party payment system isillustrated in an embodiment of the present invention. The third partypayment system 10(a), can include a central server computer 22 forprocessing user accounts and transactions, a database for storing useraccounts and associated information, and a network interface 21 forpermitting data exchange with the network and/or any other computer ordevice (e.g., mobile device) described with respect to FIG. 1. Thecentral server computer 22 can further include a processor 22(a) coupledto a storage device, such as a computer readable medium 22(b), thatstores instructions capable of being executed by the processor 22(a).The instructions can be comprised in software which includesapplications for enrolling users, granting access to user account,retrieving information associated with user accounts and transferringuser account information over the network.

The computer readable medium 22(b) can include a fixed disk or a systemmemory, disk drives, optical storage devices, solid-state storage devicesuch as a random access memory (“RAM”) and/or a read-only memory(“ROM”), which can be programmable, flash-updateable and/or the like.The computer-readable medium 22(b), together (and, optionally, incombination with database 23 and other storage devices) comprehensivelyrepresent remote, local, fixed, and/or removable storage devices plusstorage media for temporarily and/or more permanently containing,storing, transmitting, and retrieving computer-readable information.

Additionally, the computer readable medium 22(b) can include severalengines, which utilize instructions stored on the computer readablemedium to cause the processor to perform various functions for the thirdparty payment system. For example, the computer readable medium caninclude an enrollment engine 22(b)-1, which provides a user with a formhaving fields in which the user can input contact information andpayment account information. The enrollment engine 22(b)-1 can retrievethe information and form the account on the database for the user. Insome embodiments, the enrollment engine 22(b)-1 can include an algorithmto generate an alias and/or an account number for each user uponenrollment. In other embodiments, the enrollment engine 22(b)-1 canprovide the user with a notification, e.g., short message service (SIMS)text, email, etc., upon enrollment.

The computer readable medium can also include a mobile deviceverification engine, which checks the MSISDN of each incoming query froma mobile device being utilized to access a user account. As will bedescribed with reference to FIG. 6, each mobile device and computingdevice capable of accessing the account can be registered with the thirdparty payment system. If the mobile device verification engine 22(b)-2does not recognize a device, the user can be prompted with additionalsecurity features, e.g., security questions in order to be grantedaccess to the account on an unknown, or unregistered device. In someembodiments, the user can be granted limited access to the account ifaccessing the account from an unregistered device.

The third party payment system 10(a) can further include a payment dataand retrieval engine 22(b)-3, which utilizes the user's account aliasand password to identity and retrieve the user's account information.The payment data and retrieval engine 22(b)-3 can additionally receivethe user request to load a selected payment account stored on the thirdparty payment system 10(a) and securely forward the payment dataassociated with that payment account to the user's mobile device. Insome embodiments, the payment data retrieval and transfer engine 22(b)-3can include an encryption algorithm to encrypt payment data prior tosending the payment data to the user's mobile device. Accordingly, anapplication on the user's mobile device can include a shared key, whichcan be utilized to the decrypt to the loaded payment data.

In further embodiments, the third party payment system can be capable ofconducting transfers both between account holders and from an accountholder to another individual. In such embodiments, the system caninclude a transfer engine 22(b)-4, which can be utilized to conduct atransfer directly between accounts on the third party payment systemthrough direct communication with a payment processing network, orthrough credits, e.g., rewards points or monetary amount, given to atransferee for the third party payment system retail store. In such anembodiment, the third party payment system can act as the merchantbetween the sending and receiving parties. The transfer engine 22(b)-4can additionally include instructions, which cause a notification to besent to each of the sending and receiving parties that a transfer hasbeen conducted.

The central server computer 22 may also comprise software elements,including an operating system and/or other code, such as an applicationprogram (which may be a client application, Web browser, mid-tierapplication, RDBMS, etc.). It may be appreciated that alternateembodiments of a central server computer 30 may have numerous variationsfrom that described above. For example, customized hardware might alsobe used and/or particular elements might be implemented in hardware,software (including portable software, such as applets), or both.Further, connection to other computing devices such as networkinput/output devices may be employed.

Referring back to FIG. 1, the third party payment system 10(a) maycommunicate through the first communication channel 10(j) (e.g.,Internet), which the user 10(i) may access using a client computer 10(g)shown in step 2. In other embodiments, the first communication channel10(j) is formed between a user's mobile device 10(b) and the third partypayment system 10(a). In such an embodiment, the mobile device 10(b) iscapable of communicating through the Internet, e.g., through WiFi or amobile gateway (not shown) communicatively coupled to the third partypayment system 10(a). The third party payment system 10(a) may also havea direct connection to the user 10(i). The user 10(i) may providepayment information, which includes account information and contactinformation, through the first communication channel 10(j) to the thirdparty payment system 10(a). Account information may include a primaryaccount number (PAN), expiry date, etc. and the user's name and billingaddress, and also shipping information. The user may also be asked toprovide an alias for identification by other users and by the system,e.g., during login. This can expedite both user transactions anduser-to-user transactions. The third party payment system 10(a) maystore this payment information and alias for each registered user.

After initial enrollment is complete, the user 10(i) may then access theuser account on the third party payment system 10(a) through the user'smobile device 10(b) in order to complete a payment at a merchantlocation. In different embodiments, the user can either access the thirdparty payment system via the Internet or through an application, whichcan be downloaded on the mobile device 10(b). In either embodiment, theuser can access the account via the user assigned alias and at least onesecurity feature.

Security features can include any password, cryptogram, mobile stationin international subscriber directory number (MSISDN) or other securitymeans which allows the user to identify themselves to the third partypayment system. In one embodiment, the user may have an application onthe mobile device to access the third party payment system 10(a). Theuser may enter the user alias and a password. In another embodiment, theuser can enter an alias and the CVV from the primary payment accountregistered with the account, e.g., the default payment card utilized forpayment. The MSISDN can additionally be utilized by the third partypayment system 10(a) to identify if the user, assuming that the user isattempting access through his or her own mobile device, which can alsobe registered (e.g., via 10 digit telephone number) with the third partypayment system 10(a). If the user is not able to access the third partypayment system 10(a) from a known device, the user may be prompted toenter an additional security feature, such as a portion of a socialsecurity number, a mother's maiden name, or answer to security questionsfor which the user can provide responses during initial enrollment. Inother embodiments, the security feature can include biometric or otherdata, which can be taken by the mobile device, such as a voice clip forvoice recognition or a fingerprint, e.g., taken by a touch screenenabled mobile device.

Referring now to FIG. 3, an exemplary mobile device architecture isillustrated which can be utilized in the system shown in FIG. 1,according to an embodiment of the invention. As shown in FIG. 3, themobile device 10(b) may be in the form of cellular phone, having adisplay 30(e), input elements 30(i) to allow a user to input informationinto the mobile device 10(b) (e.g., keyboard), and a memory 30(b). Themobile device 10(b) can also include a processor 30(k) (e.g., amicroprocessor) for processing the functions of the mobile device 10(b),at least one antenna 30(c) for wireless data transfer, a microphone30(d) to allow the user to transmit his/her voice through the mobiledevice 10(b), and speaker 30(f) to allow the user to hear voicecommunication, music, etc. In addition, the mobile device 10(b) mayinclude one or more communications interfaces 30(g) in addition toantenna 30(c), e.g., a wireless interface coupled to an antenna. Thecommunications interfaces 30(g) can provide a near field communicationinterface (e.g., contactless interface, Bluetooth, optical interface,etc.) and/or wireless communications interfaces capable of communicatingthrough a cellular network, such as GSM, or through WiFi, such as with awireless local area network (WLAN). Accordingly, the mobile device 10(b)may be capable of transmitting and receiving information wirelesslythrough both short range, radio frequency (RF) and cellular and WiFiconnections. Additionally, the mobile device 30 can be capable ofcommunicating with a global positioning system (GPS) in order todetermine to location of the mobile device. In the embodiment shown inFIG. 3, antenna 30(c) may comprise a cellular antenna (e.g., for sendingand receiving cellular voice and data communication, such as through anetwork such as a 3G or 4G network), and interfaces 30(g) may compriseone or more local communication. In other embodiments contemplatedherein, communication with the mobile device 30 may be conducted with asingle antenna configured for multiple purposes (e.g., cellular,transactions, etc.), or with further interfaces (e.g., 3, 4, or moreseparate interfaces).

The mobile device 10(b) can also include a computer readable medium30(a) coupled to the processor 30(k), which stores application programsand other computer code instructions for operating the device, such asan operating system (OS) 30(a)-4. In an embodiment of the presentinvention, the computer readable medium 30(a) can include a third partypayment system application 30(a)-1. The third party payment systemapplication can automatically run each time that a user accesses theapplication, such as illustrated in FIG. 7B. In some embodiments, thethird party payment system application 30(a)-1 can run continuously(e.g., in the background) or at other times, such as when payment datais being stored on the mobile device and/or a transaction is beingconducted with the mobile device. In addition, the application caninclude a customizable user interface (UI), which can be determined bythe user's preferences through application level programming. Theapplication 30(a)-1 can be used to display user account informationallowing for user input, as is further discussed later with reference toFIGS. 7A-7E.

Referring again to FIG. 3, the computer readable medium 30(a) can alsoinclude a payment data load and transaction engine 30(a)-2. The paymentdata load and transaction engine 30(a)-2 can run each time that a userselects to load payment data to the mobile device from the third partypayment system. The central processing server of the third party paymentsystem can send instructions for the payment data load and transactionengine 30(a)-2 to run. Additionally, the payment data load andtransaction engine 30(a)-2 can run each time that a user conducts atransaction with the mobile device 10(b). Accordingly, each time that amerchant reader transmits an inquiry signal to the mobile device whenthe third party payment system application 30(a)-1 is running, e.g.,through a communication interface, or a user manually selects to conducta transaction, e.g., through an input of the mobile device, the paymentdata load and transaction engine 30(a)-2. The payment data load andtransaction engine 30(a)-2 can include instructions, for example, toreceive payment data through a communications interface 30(g), sendpayment data to a memory 30(b) of the mobile device, retrieve paymentdata from the memory 30(b) of the mobile device 30, and send paymentdata to a communications interface 30(g) of the mobile device 30.

The computer readable medium 30(a) on the mobile device 10(b) can alsoinclude a payment data storage and removal engine 30(a)-3, which causesthe payment data to be securely stored in and deleted from the memory30(b) of the mobile device 30. In some embodiments, the payment data ispermanently stored in the memory of the mobile device 10(b) and isencrypted. The user may then be prompted to enter a passphrase or othersecurity feature prior to gaining access to the payment data during atransaction. In other embodiments, the payment data is stored in thememory 30(b) of the mobile device 10(b) for a predetermined period. Thisperiod could include, for instance, a number of transactions (e.g.,after 1 transaction), an amount of time (e.g., after 1 hour), or afteran event (e.g., after the application is closed on the mobile device).After such predetermined period is met, the payment data storage andremoval engine 30(a)-3 can delete the payment data from the memory 30(b)of the mobile device. Accordingly, the payment data storage and removalengine 30(a)-3 can include instructions to receive the payment data fromthe payment load and transaction engine 30(a)-1 and to both securelywrite (e.g., with encryption algorithm) the payment data to the memoryof the mobile device and to delete (e.g., with encryption key) thepayment data from the memory 30(b) of the mobile device 10(b). Infurther embodiments, the payment data storage and removal engine 30(a)-3can include instructions which are written to the memory of the mobiledevice that cause the payment data to decay from the memory 30(b) aftera predetermined time period. In other embodiments, the removal of thepayment data can be a result of a manual input by the user of the mobiledevice 10(b).

Referring back to FIG. 1, once the user accesses his or her account onthe third party payment system with the mobile device 10(b), as shown instep 3, the user can view any account details, e.g., transactions,billing information, registered payment accounts, etc. The user can thenchose to load a registered payment card and/or other payment account(e.g., check, bank account, giftcard, etc.) data to the mobile device.The payment data can be permanently loaded, e.g., stored in a memoryelement of the mobile device, or temporarily loaded onto the mobiledevice, e.g., decay over a period of time. For example, the payment datamay be automatically erased from the mobile device 10(b) after 2minutes, 5 minutes, 30 minutes, 1 hour, 1 day, 1 week, or more or lessthan these amounts of time. A third party payment system application onthe mobile device, if utilized, can determine how the payment data isloaded to the device. In certain embodiments, the mobile device caninclude a partitioned memory, which requires encryption to access thepayment data for secure storage in case the mobile device is lost orstolen. All of these features provide security to the overall system inthat the payment data can be provided to the mobile device on demand.

With the payment data loaded from the third party payment system 10(a)onto the mobile device 10(b), the user can conduct a transaction at amerchant location 10(c) utilized the mobile device 10(b) as a paymentdevice, as shown in step 4. In certain embodiments, the payment data canbe communicated to the merchant via a second communication channel10(k). The second communication channel 10(k) may be formed between themobile device 10(b) and an access device, which includes an NFC capablereader 10(c)-4, at the merchant location. The second communicationchannel 10(k) can use any suitable communication protocol (e.g.,Bluetooth™) and can use any suitable optical, electrical, or magnetic(or any combination thereof) mechanism of communication. Typically, thesecond communication channel 10(k) is a short range communicationchannel (e.g., less than 10, 5, 1, or 0.1 feet) which only works withina short physical distance.

After the payment data is communicated to the merchant 40(c) via thesecond communication channel 10(k), the transaction can be processedsimilar to a normal card transaction. The payment data and transactiondetails can be forwarded to an acquirer 10(f) in an authorizationrequest message for initial clearance and processing, such as shown instep 5. The acquirer 10(f) can be a bank associated with the third partypayment system 10(a) or with the merchant 10(c), and can communicatewith an issuer of the user's payment account via the payment processingsystem 10(d). The authorization request message can include the merchantcategory code, the merchant identifier and contact information, thetransaction details and the user payment data. In some embodiments, thepayment data is sent directly to a payment processing network from themerchant, and the acquirer in step 5 is not utilized.

The authorization request message can then be forwarded to a paymentprocessing network 10(d) for settlement with the issuer of the accountassociate the payment data being utilized during the transaction, asshown in step 6.

Referring now to FIG. 4, an exemplary payment processing network 10(d)is illustrated in an embodiment of the present invention. The paymentprocessing network 10(d) may include data processing subsystems,networks, and operations used to support and deliver authorizationservices, exception file services, and clearing and settlement services.A payment processing network 10(d) may be able to process payment cardtransactions, debit card transactions, and other types of commercialtransactions. The payment processing network 10(d) may also processauthorization requests and may include a Base II system, which performsclearing and settlement services. In an embodiment of the invention, thepayment processing network 10(d) may provide other value added services,such as fraud determination, benefit points, etc.

The payment processing network 10(d) may include a network interface 41to communicate with any suitable wired or wireless network, includingthe Internet and may include a mobile gateway. The payment processingnetwork 10(d) may have a central server computer 43 and a database 45associated with the server computer 43 for storing account informationand transaction data. The central server computer 43 may comprise aprocessor 42 and a computer readable medium 44. The computer readablemedium 44 may comprise code or instructions for performing the variousfunctions of the payment processing network 10(d).

The payment processing network 10(d) may further be communicativelycoupled to any number of issuers 46 through the network interface 41.Each issuer 46 may provide payment accounts for the user to purchasegoods or services, such as accounts associated with the payment accountsstored on the third party payment system 10(a) in a user account.

The payment processing network 10(d) can additionally be communicativelycoupled to any number of merchants and/or acquirers associated withmerchants. The payment processing network 10(d) can receive, bothdirectly or indirectly, the authorization request messages frommerchants 47, 48(a) and/or third party payment systems 49(b), 49. Forexample, in embodiments provided in the present invention, the paymentprocessing network 10(d) can receive payments directly from merchants47, from merchants 48(a) receiving payments via a third party paymentsystem (48(b) and directly from a third party payment system 49, such asa transfer from an accountholder on the third party payment system 49.

Referring back to FIG. 1, the payment processing network 10(d) forwardsthe authorization request to the issuer in step 7 and processes thetransaction based on the authorization response message. In someembodiments, the payment processing network 10(d) can communicate thethird party payment system 10(a) prior to any communication with theissuer 10(e) in order to determine the issuer associated with theaccount in the authorization request message sent by the merchant. Thismay occur in situations where an alias associated with the account isutilized as the payment data loaded to the mobile device 10(b) or if adirect transaction is conducted between a user of the third partypayment system, e.g., a transfer to another user on the system.

In certain embodiments, the payment processing network 10(d) can thencommunicate a cleared transaction and details to the third partypayments system 10(a) after the transaction is complete, shown in step8. Such transaction details can be similar to those provided in onlinebanking sites, which provide the time and date of the transaction, theamount and the payee (e.g., merchant). This allows the user to be ableto log into his or her account with the third party payment system 10(a)and view any transactions conducted via a registered payment account onthe system. In some embodiments, only transactions conducted via thethird party payments system are posted to the account, e.g., those thatoccurred while the application is opened and payment data is loaded onthe mobile device and/or conducted with the alias of the account.

II. Methods

A method for conducting a transaction through a third party paymentsystem is provided in FIG. 5. The method in FIG. 5 is discussed withfurther reference to exemplary embodiments shown in FIGS. 6-7E. Thescreenshots of a user interface provided within FIGS. 6-7E are exemplaryand are utilized to demonstrate the functionality provided by the systemof FIG. 1. Accordingly, such interfaces may vary in appearance.

Referring now to FIG. 5, in step S51, the method first includesenrolling a user with the third party payment system to establish a useraccount. The user of the account can then be assigned an alias for theuser account, such as a username. In some embodiments, the third partypayment system automatically generates an alias for the user when theaccount is created. In other embodiments, the user is able to enterhis/her own alias.

The user can enroll in the third party payment system through theportal, such as a website owned by the third party payment system. Theuser can enroll through any device, e.g., a computer, a mobile phone, orany other device allowing the user to input data and communicate throughthe network. In some embodiments, the user can enroll in person atmerchant location associated with the third party payment system. Theuser can enroll by providing contact information. In some embodimentsthe user can provide payment data for at least one payment accountduring enrollment. The payment account can include a payment device,such as a credit card, debit card, gift card, etc. or a banking account,such as a savings account or a checking account.

In step S52, the user registers one or more payment accounts with thethird party payment system. The user can complete registration of apayment account during initial enrollment or at anytime after an accounthas been established. For example, a user can create an account and thenpurchase a product from the third party payment system with a paymentdevice, such as a credit card. The third party payment system can promptthe user to enter the payment data for the payment device and then askpermission to save the payment data for later use. The user can registera plurality of payment accounts with the third party payment system andcan decide during registration which accounts will be accessible forloading onto a mobile device.

Referring now to FIG. 6, an exemplary screenshot of an enrolled useraccount is show in one embodiment. As shown, a user can log into anaccount via a website 60 for the third party payment system. The userinterface can include user profile 61 information, such as an alias,e.g., username “MyUserNameA” 65, payment account information 62additional information about the payment account 63, and any additionalpayment accounts 68 currently registered. The screen may contain one ormore buttons 64, 66, 67 for registered cards. Each button provides theuser the ability to modify account information, including paymentaccount information. Some buttons 66, 67, further allow a user to sharepayment information stored within the third party payment system withother systems and services. In certain implementations, these buttons66, 67, are visible only on targeted accounts. For example, only creditcards, debit cards and gift cards can display such buttons 66, 67, to auser. The buttons 66, 67, may provide additional benefits to the thirdparty payment system's large card-on-file community. In certainembodiments, this may only be visible for targeted cards andcardholders, and can be used as a way to increase enrollment in userservices.

As shown in FIG. 6, a “Load Payment Info” button 66 is illustrated. Whenthis button 66 is selected, the payment data for the registered card 62on file with the third party payment system can be transferred, orloaded, to the user's mobile device. The mobile device can be registeredwith the third party payment system as well (e.g., noted in the“Additional Information” section), to ensure a more secure transfer anduse of the payment data. Additional devices can be added to the accountand through an “Add Device” button 67. In some embodiments, specificdevices can be associated with specific registered accounts. Forexample, a credit card associated with parent and a child can beregistered to both the parent's and the child's third party paymentsystem account and can include only the child's mobile phone as anauthorized device.

Clicking the buttons can be a better (easier, more secure) way to loadpayment credentials to a phone. And, in some cases, credentials (e.g.,payment data) may not be needed on the phone to provide for additionalsecurity. In one example, users may integrate their payment informationwith RTM (real time monitoring). An RTM loyalty program can be wheremoney or third party payment system credit are received for fulfillment.In another example, users can integrate their payment information with amoney transfer service, which can receive and send fees to other personsand entities.

Referring back to FIG. 5, in step S53, a user can download anapplication to a mobile device registered with the third party paymentsystem in order to more easily and securely navigate the payment system.The application can be downloaded when the user initially visits thethird party payment application website or prior to accessing the thirdparty payment system. The application can include additional securityfeatures, e.g., encryption technique, which ensure that anycommunication between the third party payment system and the user'smobile device is secure. After download, an application icon 70(a) canappear on the user interface 70(b) of the mobile device 70, such asshown in FIG. 7A.

In step S54, the user can access the user account with the mobile device70, as shown in FIG. 7B. The user interface can identify the name of thethird party payment system 70(c) and can be prompt the user to enter anaccount alias, e.g., assigned during enrollment, and a security feature,such as a password, PIN, or biometric data in fields 70(d) provided inthe user interface. After entering the correct information, the user canbe granted access to the user account on the third party payment system.As provided in FIG. 7C, the user may first be shown a user profileinterface, which provides the user the ability to view the user'saccount, e.g., “My Account” 70(e), to view the user's past transactions,e.g., “My Transactions” (70(f), to load a payment account to the phoneand/or conduct a transfer, e.g., “Make a Payment” 70(g), or to searchproducts offered on the third party payment system's website, e.g.,“Search Products” 70(h).

In step S55, the user can be provided various aspects relating to theuser account, including a registered payment account. The user can beprovided this information through a display of the mobile device beingutilized to access the account, through a voice recording providedthrough the third party payment system, or by another communicationmedium. Referring to FIG. 7D, in one embodiment, the user may wish toview the user account under “My Account” in order to modify privacysettings for the account on the mobile device 70, e.g., “PrivacySettings” 70(i), to add, view, or modify payment accounts, e.g.,“Payment Information” 70(j), view registered accounts and accountbalances, such as credits, rewards points, etc., e.g., “Account Summary”70(k), or to modify and view account settings, such as to change analias or security feature of the account, e.g., “Account Settings”70(l). If a user has no payment account, which can be loaded to a mobiledevice, the user may wish to register a payment account and enableloading capabilities through the “My Account” interface.

Referring back to method 50 in FIG. 5, in step S56, the user cannavigate through the user interface of the application in order tolocate and select payment account to be loaded on the mobile device 70.The user can select an available account through the “Make A Payment”option provided on the user's home screen after login. Once this optionis a selected all available payment options that can be utilized areshown to the user, such as illustrated in FIG. 7E. For example, the usercan chose to complete a transfer to another user on the third partypayment system with the “Start a Transfer” 70(o) option. The user maythen be prompted to enter the other accountholder's alias and/or othercontact information in order to conduct the transfer. A transfer couldbe initiated over-the-air, or it could be initiated when mobile deviceis connected to a computer during a data synchronization (sync) process.The user can also select to “Pay with TPPS account” 70(n) (third partypayment system account), such as through a balance accumulated with theaccount from receiving transfers from other account holders and/orrewards points, etc. Finally, the user can select to “Load Card toPhone” 70(m) in order to utilize a payment account registered on thethird party payment system to conduct a transaction. After selection,each payment account can be shown with an identifier of that account andprovide the user with an option to select the account. If the user hasonly one payment account registered and/or a default payment account,the selection of the “Load Card to Phone” 70(m) option can cause thepayment data associated with that account to load to the user's mobiledevice. As previously mentioned, if a payment account is not availablewithin the user's account, the user can navigate through the applicationand add a payment account or enable an existing account to be able toload that account to the mobile device.

Referring again to FIG. 5, in step S57, once the user has selected toload a payment account to the user's mobile device, the payment dataassociated with the selected payment account can be received by themobile device. The payment data can be received through the network viaany known wireless communication techniques that can be utilized tosecurely transfer data between the third party payment system and themobile device.

Next, in step S58, the user can conduct a transaction with the mobiledevice. The mobile device can be enabled to perform remote payments orbrick and mortar type payments. The mobile device can provide a messageon the user interface, which indicates that the mobile device is beingutilized as a certain payment account (e.g., an identifier of thataccount). In other embodiments, the user can be provided a message,which indicates that the payment data has been received and is to beutilized in a certain allotted time period. In further embodiments, suchas when the user's account settings allow for the user to permanentlydownload the payment data, the user can be provided with a messageindicating that the payment account data has been successfullydownloaded and stored on the mobile device. In certain embodiments, theapplication may include a library of icons for each type of paymentaccount and provide such icon on the user interface when a paymentaccount has been loaded to the mobile device. In some embodiments, thethird party payment system application may remain open and running inthe background while the users utilizes other mobile device functions.The mobile device can then communicate the loaded payment data to amerchant's POS terminal once a query signal is received by the mobiledevice. Accordingly, the user may not be shown any information relatingto the loaded payment data on the user interface of the mobile device,though the mobile device may be still be utilized as a payment device.

Finally, in step S59, once the user has utilized the mobile device toconduct a transaction, the loaded payment data can be deleted from themobile device. This may occur in response to a predetermined event, suchas the one time use of the mobile device at a merchant location, theexpiration of a predetermined time period (e.g., decay of data), or theclosure of the third party payment system application and subsequentlogout of the user from the user account on the mobile device. In otherembodiments, the user can manually input to delete the payment data onthe mobile device. For example, after use at a merchant location, awindow could pop up on the user interface of the mobile device andprompt the user to “Use this payment account for another transaction” or“Delete this payment account now”. The first option may be useful if theuser is going to complete another purchase in a short amount of time.However, as previously noted, the communication channel created betweenthe user's mobile device and the third party payments system remainsopen during use of the loaded payment data on the mobile device duringthe transaction in some embodiments, e.g., such as when the payment datais not set to decay or automatically delete after user on the mobiledevice. Accordingly, if a connection is lost between uses, the user mayneed to access the account again and load the payment data again.

III. Computer Apparatuses and Access Devices

Exemplary computer apparatuses and access devices are described withreference to FIGS. 8-9. In particular, an exemplary computer system,such as that utilized for a central processing server, a personalcomputer, e.g., for user enrollment and/or online transactions, and/or amerchant register, is illustrated in FIG. 8. An exemplary access device,which may be utilized at a merchant location to retrieve payment datafrom a user's mobile device during a transaction, is illustrated in FIG.9

FIG. 8 is a block diagram of typical computer system 80 configured toexecute computer readable code to implement various functions and stepsaccording to various embodiments of the present invention.

The computer system 80 is representative of a computer system capable ofembodying the present invention. The computer system 80 can be presentin any of the elements in FIGS. 1 through 4, including the computer(s)operating the third party payment system as described above. It will bereadily apparent to one of ordinary skill in the art that many otherhardware and software configurations are suitable for use with thepresent invention. For example, the computer system 80 may be a desktop,portable, rack-mounted or tablet configuration. Additionally, thecomputer system 80 may be a series of networked computers. Further, theuse of other micro processors are contemplated, such as Xeon™, Pentium™or Core™ microprocessors; Turion™ 64, Opteron™ or Athlon™microprocessors from Advanced Micro Devices, Inc; and the like. Further,other types of operating systems are contemplated, such as Windows®,WindowsXP®, WindowsNT®, or the like from Microsoft Corporation, Solarisfrom Sun Microsystems, LINUX, UNIX, and the like. In still otherembodiments, the techniques described above may be implemented upon achip or an auxiliary processing board. Various embodiments may be basedupon systems provided by daVinci, Pandora, Silicon Color, or othervendors.

In one embodiment, computer system 80 typically includes output devices83 (e.g., display), input devices 84, communications interfaces 88, oneor more central processing units (CPUs) 85, a working memory 89,computer readable storage media 81 and media reader 86, and one or morestorage devices 82. In various embodiments, display (monitor) may beembodied as a CRT display, an LCD display, a plasma display, adirect-projection or rear-projection DLP, a microdisplay, or the like.In various embodiments, the display may be used to display userinterfaces and rendered images.

In various embodiments, a user input devices 84 are typically embodiedas a computer mouse, a trackball, a track pad, a joystick, wirelessremote, drawing tablet, voice command system, and the like. User inputdevice 84 typically allows a user to select objects, icons, text and thelike that appear on the display via a command such as a click of abutton or the like. An additional specialized user input device, such amagnetic stripe, RFID transceiver or smart card reader may also beprovided in various embodiments. In other embodiments, user inputdevices 84 include additional computer system displays (e.g. multiplemonitors). Further user input devices 84 may be implemented as one ormore graphical user interfaces on such a display.

Embodiments of communication interfaces 88 typically include an Ethernetcard, a modem (telephone, satellite, cable, ISDN), (asynchronous)digital subscriber line (DSL) unit, FireWire interface, USB interface,and the like. For example, communication interfaces 88 may be coupled toa computer network, to a FireWire bus, or the like. In otherembodiments, computer interfaces 88 may be physically integrated on themotherboard of the computer system 80, may be a software program, suchas soft DSL, or the like.

RAM and disk drive 1080 are examples of tangible computer readablestorage media 81 configured to store data such user data, account data,merchant data, third-party service provider data, payment network data,abstraction layer databases and look-up tables and other executablecomputer code, human readable code, or the like. Other types of tangiblecomputer readable storage media 81 include magnetic storage media suchas floppy disks, networked hard disks, or removable hard disks; opticalstorage media such as CD-ROMS, DVDs, holographic memories, or bar codes;semiconductor media such as flash memories, read-only-memories (ROMS);battery-backed volatile memories; networked storage devices, and thelike. The computer system 80, can include a computer readable storagemedia reader 86, such as a hard, floppy or optical disk drive, oruniversal serial bus port capable of reading the computer readablestorage media 81.

In the present embodiment, computer system 80 may also include softwarethat enables communications over a network such as the HTTP, TCP/IP,RTP/RTSP protocols, and the like. In alternative embodiments of thepresent invention, other communications software and transfer protocolsmay also be used, for example IPX, UDP or the like.

In various embodiments, computer system 80 typically includes familiarcomputer components such as a processor, e.g., CPUs 85, and memorystorage devices 82, such as a random access memory (RAM), disk drives86, and system bus 87 interconnecting the above components. The computersystem 80 can also include a working memory 89, e.g., RAM, EEPROM, ROM,which stores computer readable instructions executable by the processor,such as the operating system 89(a) and application program software89(b).

In some embodiments, the computer system 80 includes one or more Xeonmicroprocessors from Intel. Further, in the present embodiment, thecomputer system 80 typically includes a UNIX-based operating system.

Referring now to FIG. 9, an exemplary access device 90, such as areader, is illustrated in one embodiment. The access device 90 can becommunicatively coupled to a merchant register (not shown) to form apoint of sale terminal. The access device 90 can include one or moreinterfaces 94 (e.g., Universal Serial Bus (USB) connector, wiredconnection, etc.), one or more input elements 91 (chip card reader,Magstripe reader, barcode scanner, etc.), a housing 96, one or moreoutput elements 95 (display, printer, external storage device), and acomputer readable medium (CRM) 93 for storing instructions to read andwrite data, for example. In one embodiment, the access device is capableof generating a cryptogram each time a user device is read for addedsecurity. In the case of contactless communication with the user device,the input elements 91 can include a transceiver capable of short range,or near field communication (NFC), such as an radio frequency RFtransceiver, or an optical scanner. The access device 90 can also bereferred to as a card terminal or card reader.

Benefits of the present invention allow a user to have a simplifiedpayment system, which is accessible through any device capable ofcommunicating with a third party payment system. The user can conducttransactions with a singular payment device, while not being required tomaintain payment data on the device when a transaction is not beingconducted. Accordingly, the user is not burdened with the threat ofpayment data being stolen if the mobile device is lost or stolen.Additionally, the present invention saves time for the user because theuser is not required to re-enter the same payment information each timea transaction is conducted, nor required to carry a physical paymentdevice. However, the user can have ready access to payment data which issecurely stored on the third party payment system. Thus, embodiments ofthe invention provide for a number of technical advantages, includingimproved data security (because payment credentials are stored on athird party site and are only used on a mobile device when needed), andmore convenience to a consumer.

It should be understood that embodiments of the present invention asdescribed above can be implemented in the form of control logic usingcomputer software in a modular or integrated manner. Based on thedisclosure and teachings provided herein, a person of ordinary skill inthe art will know and appreciate other ways and/or methods to implementthe present invention using hardware and a combination of hardware andsoftware

Any of the software components or functions described in thisapplication, may be implemented as software code to be executed by aprocessor using any suitable computer language such as, for example,Java, C++ or Perl using, for example, conventional or object-orientedtechniques. The software code may be stored as a series of instructions,or commands on a computer readable medium, such as a random accessmemory (RAM), a read only memory (ROM), a magnetic medium such as ahard-drive or a floppy disk, or an optical medium such as a CD-ROM. Anysuch computer readable medium may reside on or within a singlecomputational apparatus, and may be present on or within differentcomputational apparatuses within a system or network.

The above description is illustrative and is not restrictive. Manyvariations of the invention will become apparent to those skilled in theart upon review of the disclosure. The scope of the invention should,therefore, be determined not with reference to the above description,but instead should be determined with reference to the pending claimsalong with their full scope or equivalents.

One or more features from any embodiment may be combined with one ormore features of any other embodiment without departing from the scopeof the invention.

A recitation of “a”, “an” or “the” is intended to mean “one or more”unless specifically indicated to the contrary.

What is claimed is:
 1. A method comprising: receiving, by a third partyserver from a client computer of a user, information regarding useraccount and at least one payment account comprising a first paymentaccount associated with the user account; storing, by the third partyserver, the information regarding the user account and the at least onepayment account associated with the user account in a database;receiving, by the third party server, a request to access the useraccount with a mobile device through a first interface of the mobiledevice in communication with a first communication channel to load thefirst payment account to the mobile device; and loading, by the thirdparty server to the mobile device, payment data associated with thefirst payment account received from the database onto a memory of themobile device, wherein the mobile device transmits the loaded paymentdata from the mobile device to an access device through a second shortrange communication channel to conduct a transaction, wherein the mobiledevice provides the payment data for the transaction directly from thememory of the mobile device instead of the payment data being providedby the third party server, and automatically erases, by a removal enginein the mobile device, from the memory of the mobile device the paymentdata after a predetermined time, where the predetermined time includes atime period after a predetermined number of transactions have beenconducted using the mobile device with the payment data stored thereon,where the predetermined number of transactions is greater than one. 2.The method of claim 1, wherein the client computer is the mobile device.3. The method of claim 1, wherein further comprising: encrypting, by thethird party server, the payment data prior to loading the payment datain the memory.
 4. The method of claim 1, wherein the user is assigned analias that is associated with the user account.
 5. The method of claim1, wherein the payment data includes a primary account number and a cardverification value.
 6. The method of claim 1, wherein the user isassigned an alias that is associated with the user account, thetransaction is a first transaction, and wherein the method furthercomprises: conducting a second transaction with the alias, wherein thealias is utilized to access the payment data associated with the firstpayment account on the third party server.
 7. The method of claim 1,wherein the client computer is separate from the mobile device, andwherein the client computer conducts transactions using the third partyserver using the first payment account.
 8. The method of claim 1,wherein the third party server is a merchant server that operates amerchant website.
 9. A third party server comprising: a processor; and acomputer readable medium coupled to the processor, the computer readablemedium comprising code executable by the processor, to implementoperations including: receiving, from a client computer of a user,information regarding a user account and at least one payment accountcomprising a first payment account associated with the user account;storing the information regarding the user account and the at least onepayment account associated with the user account in a database;receiving a request to access the user account with a mobile devicethrough a first interface of the mobile device in communication with afirst communication channel to load the first payment account to themobile device; and loading, to the mobile device, payment dataassociated with the first payment account received from the databaseonto a memory of the mobile device, wherein the payment data is providedfrom the mobile device to an access device through a second short rangecommunication channel to conduct a transaction, wherein the payment datafor the transaction is provided directly from the memory of the mobiledevice instead of being provided by the third party server, and isautomatically erased, by a removal engine in the mobile device, from thememory of the mobile device after a predetermined time, where thepredetermined time includes a time period after a predetermined numberof transactions have been conducted using the mobile device with thepayment data stored thereon, where the predetermined number oftransactions is greater than one.
 10. The third party server of claim 9,wherein the operations further include: encrypting, by the third partyserver, the payment data prior to loading the payment data in thememory.
 11. The third party server of claim 9, wherein the third partyserver is a merchant server that operates a merchant website, andwherein the payment data comprises a primary account number and a cardverification value.
 12. A system comprising: a mobile device; and athird party server comprising a processor, and a computer readablemedium coupled to the processor, the computer readable medium comprisingcode executable by the processor, to implement operations including:receiving, from a client computer of a user, information regarding auser account and at least one payment account comprising a first paymentaccount associated with the user account, storing the informationregarding the user account and the at least one payment accountassociated with the user account in a database, receiving a request toaccess the user account with the mobile device through a first interfaceof the mobile device in communication with a first communication channelto load the first payment account to the mobile device, and loading, tothe mobile device, payment data associated with the first paymentaccount received from the database onto a memory of the mobile device,wherein the mobile device transmits the loaded payment data from themobile device to an access device through a second short rangecommunication channel to conduct a transaction, wherein the mobiledevice provides the payment data for the transaction directly from thememory of the mobile device instead of the payment data being providedby the third party server, and automatically erases, by a removal enginein the mobile device, from the memory of the mobile device the paymentdata after a predetermined time, where the predetermined time includes atime period after a predetermined number of transactions have beenconducted using the mobile device with the payment data stored thereon,where the predetermined number of transactions is greater than one. 13.The system of claim 12, further comprising: the access device.
 14. Thesystem of claim 13, wherein the mobile device is a mobile phone.
 15. Thesystem of claim 13, wherein the user is assigned an alias that isassociated with the user account, the transaction is a firsttransaction, and wherein the operations further include: conducting asecond transaction with the alias, wherein the alias is utilized toaccess the payment data associated with the first payment account on thethird party server.
 16. The system of claim 12, wherein the payment datacomprises a primary account number and a card verification value.